Rankmath Seo

14 CVEs affecting Rankmath Seo. Latest disclosed: 2025-02-13. Critical: 1, High: 2.

Top CVEs affecting Rankmath Seo
CVESeverityScorePublishedSummary
CVE-2020-11514Critical9.82020-04-07The Rank Math plugin through 1.0.40.2 for WordPress allows unauthenticated remote attackers to update arbitrary WordPress metadata, including the ability to es…
CVE-2023-23888High7.62024-05-17Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Rank Math Rank Math SEO allows Path Traversal.This issue affect…
CVE-2024-9314High7.22024-10-05The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0…
CVE-2022-36376Medium6.82022-09-09Server-Side Request Forgery (SSRF) vulnerability in Rank Math SEO plugin <= 1.0.95 at WordPress.
CVE-2024-9161Medium6.52024-10-05The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing cap…
CVE-2023-32600Medium6.52023-08-06Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Rank Math SEO plugin <= 1.0.119 versions.
CVE-2019-14786Medium6.52019-08-15The Rank Math SEO plugin 1.0.27 for WordPress allows non-admin users to reset the settings via the wp-admin/admin-post.php reset-cmb parameter.
CVE-2024-13227Medium6.42025-02-13The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Rank Math API in a…
CVE-2024-4335Medium6.42024-05-14The Rank Math SEO with AI Best SEO Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘textAlign’ parameter in versions up to, and…
CVE-2024-3665Medium6.42024-04-23The Rank Math SEO with AI SEO Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's HowTo and FAQ widgets in all versions up…
CVE-2024-2536Medium6.42024-04-09The Rank Math SEO with AI SEO Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the HowTo block attributes in all versions up to, and…
CVE-2020-11515Medium6.12020-04-07The Rank Math plugin through 1.0.40.2 for WordPress allows unauthenticated remote attackers to create new URIs (that redirect to an external web site) via the…
CVE-2024-4627Medium5.42024-07-02The Rank Math SEO WordPress plugin before 1.0.219 does not sanitise and escape some of its settings, which could allow users with access to the General Settin…
CVE-2024-13229Medium4.32025-02-13The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on…